generic: check CAP_LINUX_IMMUTABLE capability

mirror of https://github.com/linux-apfs/apfstests.git synced 2026-05-01 15:01:44 -07:00

It should return error while changing IMMUTABLE_FL and APPEND_FL if the
process has no capability CAP_LINUX_IMMUTABLE.

However, it's not true on overlayfs after kernel version v4.19 since
the process's subjective cred is overridden with ofs->creator_cred
before calling real vfs_ioctl.

The following patch for ovl fix the problem:
  "ovl: check the capability before cred overridden"

Add this testcase to cover this bug.

Signed-off-by: Jiufei Xue <jiufei.xue@linux.alibaba.com>
Reviewed-by: Amir Goldstein <amir73il@gmail.com>
Signed-off-by: Eryu Guan <guaneryu@gmail.com>

This commit is contained in:

Jiufei Xue

2019-05-08 15:10:00 +08:00

committed by

Eryu Guan

parent 9820d643ea

commit 80bac2129b

4 changed files with 85 additions and 0 deletions

tests/generic/group

View File

@@ -547,3 +547,4 @@
 auto quick clone
 auto quick clone
 auto quick clone
 auto quick cap